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DETAILED ACTION 
Continued Examination Under 37 CFR 1.114 

1 . A request for continued examination under 37 CFR 1.114, including the fee set forth in 
37 CFR 1.17(e), was filed in thjs application after final rejection. Since this application is 
eligible for continued examination under 37 CFR 1.1 14, and the fee set forth in 37 CFR 1.17(e) 
has been timely paid, the finality of the previous Office action has been withdrawn pursuant to 
37 CFR 1.114. AppUcant's submission filed on 1 1/17/2006 has been entered. 

o 

Response to Amendment 

2. AppUcant amendments' and arguments are moot in view of new grounds of rejection. 

3. Claims 1-13, 15-22, and 23-30 are currently pending. 

Claim Rejections - 35 USC § 103 

4. The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set forth in 
section 102 of this title, if the differences between the subject matter sought to be patented and the prior art are 
such that the subject matter as a whole would have been obvious at the time the invention was made to a person 
having ordinary skill in the art to which said subject matter pertains. Patentability shall not be negatived by the 
manner in which the invention was made. 

5. Claims 1-13, 15-22, and 24-30 are rejected under 35 U.S.C. 103(a) as being unpatentable 
over Cunningham et al. Pub. Np.: US 2005/0086295 Al in view of Wesinger, Jr. et al. 
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Regarding claims 1 and 26, Cunningham et al. teaches a method/system for providing security 
(fig. 2 element 21) to a client computing system (fig. 2 element 1 1) in communication with a 
host communication system across a network (fig. 2 element 31), said method comprising: 

executing a browser on the client computing system (0022; client web browser is 
executed); 

communicating, from t^e client to the host computing system, a request to download data 
to be displayed in the browser (0027-0028, 0035 and 0031); 

downloading the data from the host computing system to the client computing system via 
a client side firewall in response to the download request (fig. 4; downloading real-time data to 
client computing system via client firewall as shown on fig. 2 element 21, fi-om the server based 
on client request); 

loading an interactive software application in the browser, the interactive software 
application utilizing the data downloaded from the host computing system (claim 1, 0029, and 
0032; asynchronous hypertext Ifnessages encoded in said HTML document); 

executing the interactive software application in the browser on the client computing 
system, the interactive software application being in communication with at least one element 
that is outside the browser (0051-0052; the browser communicating with user device system 
that is outside the browser) an^ on the client side behind the client side firewall (0051-0052; the 
hypertext message in HTML document sent from server to client is executed/displayed on the 
client computing system in communication with the client system in communication with the 
client side firewall); and 
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wherein the communication between the interactive software application and the at least 
one element occurs after the loading of the interactive software application (0010-0013; the 
application received and displayed is in communication with the client underlying architecture 
system). 

Of 

Cunningham et al. fails to explicitly disclose wherein the communication between the 
interactive software application and the at least one element occurs exclusively on the client side 
of the client side firewall. However Wesinger, Jr. et al. discloses a client side firewall (fig. 3 
element 305) authenticating and/verifying verifying exclusively on the client side firewall, with 
stored rules (fig. 3 element 316 and 321) stored in the firewall, for a user (fig. 3 elements 3O5A5 
305B) connection request received from a user browser (col. 9 lines 48-67). 

Therefore it would have been obvious to one having ordinary skill in the art at the time of 
the invention was made to modify the teachings of Wesinger, Jr. et al. within the system of 
Cunningham et al. because they are analogous in firewall authentication. One would have been 
motivated to modify the teachings of Wesinger, Jr. et al. within the system because it would save 
processing time by verifying some data inside the client side firewall instead of web server 
authenticating each users espeoially when lots of user requests are received at the same time. 

Regarding claim 12, Cunningham et al, discloses a system for providing security to a client 
computing system operating a browser in communication with an interactive software 
application maintained by a host computing system (figs. 2-5), said system comprising: 
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at least one processor in the client computing system operable to generate and 
communicate a request to download the interactive software application from the host computing 
system to the client computing'^ystem (0027-0028, and 0031); 

a memory operating in the client computing system to store the interactive software 
application downloaded in response to the download request, said at least one processor 
executing the stored interactive software application inside the browser on the client computing 
system, the executed interactive software application and the browser being in communication 
with at least one element (fig. 4; downloading real-time data to client computing system memory 
storage via client firewall as shown on Jig. 2 element 21, from the server based on client request) 
that is outside the browser and on the client side of the client side firewall (0051-0052; the 
browser communicating with user device system that is outside the browser); 

wherein the communication between the interactive software application and the at least 
one element occurs after the loading of the interactive software application (0010-0013; the 
application received and displayed is in communication with the client underlying architecture 
system), 

Cunningham et al. fails to explicitly disclose wherein the communication between the 
interactive software application and the at least one element occurs exclusively on the client side 
of the client side firewall. However Wesinger, Jr. et al. discloses a client side firewall (fig. 3 
element 305) authenticating and/verifying verifying exclusively on the client side firewall, with 
stored rules (fig. 3 element 316 and 321) stored in the firewall, for a user (fig. 3 elements 305 A, 
305B) connection request received from a user browser (col. 9 lines 48-67). 
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Therefore it would have been obvious to one having ordinary skill in the art at the time of 

the invention was made to modify the teachings of Wesinger, Jr. et al. within the system of 
Cunningham et al. because they are analogous in firewall authentication. One would have been 
motivated to modify the teachings of Wesinger, Jr. et al. within the system because it would save 
processing time by verifying some data inside the client side firewall instead of web server 
authenticating each users especially when lots of user requests are received at the same time. 

Regarding claim 19, Curmingham et al. discloses a method for providing security to a client 
computing system operating aa interactive software application (figs. 2-5), said method 
comprising: 

loading the interactive software application on the client computing system (fig. 4; 
downloading real-time data to client computing system via client firewall as shown on fig. 2 
element 21, from the server based on client request); 

executing the interactive software application on the client computing system (0051- 
0052; the hypertext message in HTML document sent from server to client is executed/displayed 
on the client computing system in communication with the client system); 

communicating a digital signature to the browser (0034, 0038, 0058 TABLE 1, and 0065; 
signature/certificate authentication); 

verifying digital signature (0034, 0038, 0058 TABLE 1, and 0065; signature/certificate 
authentication and verification); 

upon confirmation of the digital signature, opening a port of the browser for receiving 
data from at least one element (fig. 4 element S8-S9 and 0034'0052; authenticating based on 
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signature and opening port to provide data) that is outside the browser and on the client side 
of the client side firewall (0051-0052; the browser communicating with user device system 
that is outside the browser); and 

communicating data between the at least one element and the browser on the client 
computing system (0051-0052; the hypertext message in HTML document sent from server to 
client is executed/displayed on the client computing system in communication with the client 
system), 

Curmingham et al. fails to explicitly disclose wherein the communication between the 
interactive software application and the at least one element occurs exclusively on the client side 
of the client side firewall. However Wesinger, Jr. et al. discloses a client side firewall (fig. 3 
element 305) authenticating and/verifying verifying exclusively on the client side firewall, with 
Stored rules (fig. 3 element 316 and 321) stored in the firewall, for a user (fig. 3 elements 305 A, 
305B) connection request received from a user browser (col. 9 lines 48-67). 

Therefore it would have been obvious to one having ordinary skill in the art at the time of 
the invention was made to mocjify the teachings of Wesinger, Jr. et al. within the system of 
Cunningham et al. because they are analogous in firewall authentication. One would have been 
motivated to modify the teachings of Wesinger, Jr. et al. within the system because it would save 
processing time by verifying some data inside the client side firewall instead of web server 
authenticating each users espewally when lots of user requests are received at the same time. 

Regarding claims 2 and 13, Curmingham et al. discloses the method/system wherein the 
communication includes issuing and receiving events (claim 1). 
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Regarding claims 3 and 14, Cimningham et al. discloses the method/system wherein the at least 
one element includes at least one of a browser and an element of an underlying architecture 
(0035-0052). 

Regarding claims 4 and 15, Cunningham et al. discloses the method/system wherein the 
interactive software application is an applet (claim 5 and 0064); 

Regarding claim 5 Cunningham et al. discloses the method/system wherein the applet is Java 
applet (claim 5 and 0064); 

Regarding claims 6, 16 and 22, Cunningham et al. discloses the method/system wherein the 
communication commences after verification. of a digital signature (0034, 0038, 0058 TABLE 1, 
and 0065); 

Regarding claim 7, Cunningham et al. discloses the method/system further comprising: 
reading a digital signature (0034, 0038, 0058 TABLE 1, and 0065; reading it to 

authenticate); 

verifying the digital signature (0034, 0038, 0058 TABLE 1, and 0065; 
certificate/signature authentication); and 
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opening a port of the browser to receive events from the at least one element (fig. 4 
element S8-S9 and 0034-0052; authenticating based on signature and opening port to provide 
data). 

Regarding claims 8 and 17, Cunningham et al. discloses the method/system wherein the data 
includes a model representative of an underlying architecture of a software system (0030, and 
0028). 

Regarding claim 10, Cunningham et al. discloses the method/system wherein the data includes 
content and format information (0035-0052). 

Regarding claims 11,18 and 25, Cunningham et al. discloses the method/system wherein the 
browser is a web browser (claim 22 and fig. 2 element 51). 

Regarding claim 20, Cunningham et al. discloses the method/system wherein the data includes at 
least one of events and requests (0058 TABLE 1). 

Regarding claim 21, Cunningham et al. discloses the method/system wherein the events and 
requests utilize the HTTP protocol (claim 31). 

Regarding. claim 24, Cunningham et al. discloses the method/system wherein the at least one 
element operates on the client side of the client firewall (0024). 



Application/Control Number: 09/971,717 



Art Unit: 2136 



Page 10 



Regarding claims 27-30, Cunningham et al. discloses the method/system wherein the at atleast 

one element is operating on the client computing system includes a component of an underlying 
architecture of the client computing system (0010-0013; the application received and displayed 
is in communication with the client underlying architecture system). 

Conclusion 

6. Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Eleni A. Shiferaw whose telephone number is 571-272-3867. 
The examiner can normally be reached on Mon-Fri 8:00am-5:00pm. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Nasser R. Moazzarni can be reached on (571) 272-4195. The fax phone number for 
the organization where this application or proceeding is assigned is 571-273-8300. 

Information regarding tjie status of an application may be obtained from the Patent 
Application Information Retrieval (PAIR) system. Status information for published applications 
may be obtained from either Private PAIR or Public PAIR. Status information for unpublished 
applications is available through Private PAIR only. For more information about the PAIR 
system, see http://pair-direct.uspto.gov. Should you have questions on access to the Private PAIR 
system, contact the Electronic Business Center (EBC) at 866-217-9197 (toll-free). If you would 
like assistance from a USPTO Customer Service Representative or access to the automated 
information system, call 800-786-9199 (IN USA OR CANADA) or 571-272-1000. 
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